AMENDMENT AND RESPONSE UNDER 37 C.F.R. § 1.116 - EXPEDITED PROCEDURE Page 2 

Serial Number:10/814,983 Dkt: 1565.069US1 

Filing Date: March 31, 2004 

Title: TECHNIQUES FOR SECURELY ACCELERATING EX'I i K \ A 1. DOMAINS I A '( ALLY 



IN THE CLAIMS 

Please amend the claims as follows: 

1. (Currently Amended) A computer-implemented method residing in a computer-readable 
medium and processed by a proxy for securely accelerating an external domain locally, 
comprising: 

receiving a secure communications request for an external domain from a client; 
identifying a domain identification associated with the request; and 
routing the request to a local domain accelerator based on the domain identification, 
wherein the local domain accelerator communicates securely with the external domain via a first 
set of unique session keys used for the local domain accelerator and the external domain to 
communicate via encrypted communications with one another and separately the local domain 
accelerator communicates securely with the client via a second set of unique session keys used 
for the local domain accelerator and the client to communicate and the first set of session keys 
and the second set of session keys are different from one another and wherein the client believes 
communication that the client has with the local domain accelerator is occurring with the 
external domain because the local domain accelerator vends an external domain certificate to the 
client during the communication to present itself as the external domain but in fact it occurs with 
the local domain accelerator via the second set of session keys, and wherein the local domain 
accelerator caches data from the external domain for servicing the request of the client , and 
wherein the data is cached and managed via the proxy and maintained in decrypted format within 
cache and then re-encrypted using the second set of unique session keys when data from the 
cache is delivered from the local domain accelerator to the client from the cache to satisfy the 
request . 

2. (Original) The method of claim 1 further comprising processing the method as at least 
one of a forward proxy and a transparent proxy. 



3. (Cancelled). 
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4. (Original) The method of claim 1 further comprising, establishing a Secure Sockets 
Layer (SSL) handshake between the client and the local domain accelerator to service the 
request, wherein the client believes that the handshake is with the external domain. 

5. (Original) The method of claim 1 wherein receiving further includes intercepting the 
request that originates from the client for the external domain. 

6. (Original) The method of claim 1 further comprising, accessing, by the local domain 
accelerator, caching services for caching and managing the data. 

7. (Original) The method of claim 1 wherein identifying further includes stripping a host 
header from the request, wherein the host header is the domain identifier which identifies the 
external domain. 

8. (Currently Amended) A computer-implemented m ethod residing in a computer-readable 
medium and processed by a proxy for securely accelerating an external domain locally, 
comprising: 

receiving a secure request forwarded from a proxy, the secure request originating from a 
client and destined for an external domain; 

establishing a secure communication with the client by providing the client a certificate 
associated with the external domain, wherein the certificate is for the external domain and is 
vended to the client to make the client believe the secure interaction is occurring with the 
external domain, and wherein the secure communication entails using a first set of session keys 
to communicate securely with the client and the client believes after receiving the certificate that 
communication is occurring with the external domain; and 

servicing the client with data from local cache that is acquired from the external domain 
via encrypted communications, and wherein a portion of that data is used to service the secure 
request, and wherein separate communication is securely established with the external domain 
using a second set of session keys via the encrypted communications, the first set of session keys 
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different from the second set of session keys , and wherein the data is decrypted and housed in the 
local cache of the proxy and subsequently re-encrypted and delievered to the client using the first 
set of session keys via the secure communication with the client . 

9. (Original) The method of claim 8 wherein servicing further includes acting as the 
external domain when interacting with the client. 

10. (Original) The method of claim 8 further comprising accessing caching services from the 
proxy to manage the data in the local cache. 

11. (Original) The method of claim 8 wherein servicing further includes acquiring at least a 
portion of the data from the external domain in advance of a subsequent request for that portion 
of the data, wherein the subsequent request is issued from the client. 

12. (Original) The method of claim 8 wherein servicing further includes interacting securely 
with the external domain to acquire the data housed in the local cache. 

13. (Previously Presented) The method of claim 12 wherein interacting securely further 
includes mutually signing interactions transmitted between a local domain accelerator and the 
external domain. 

14. (Previously Presented) The method of claim 13 wherein interacting securely further 
includes using the proxy to establish a secure communications channel between the local domain 
accelerator and the external domain. 

15. (Currently Amended) An external domain acceleration system, comprising: 
a proxy; and 

a local domain accelerato r implemented in a computer-readable medium and to process 
on the proxy , wherein a client securely requests an external domain and the proxy routes the 
request to the local domain accelerator, the local domain accelerator securely communicates with 
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the external domain via encrypted communications and caches data in a local cache of the proxy 
in a decrypted format which is used to service the client via secure communications between the 
local domain accelerator and the client by re-encrypting the data from the local cache using a 
first set of session keys , and wherein the local domain accelerator securely communicates with 
the client using the [[a]] first set of session keys and securely communicates with the external 
domain using a second set of session keys via the encrypted communications, the first set of 
session keys are different from the second set of session keys, and wherein the client believes 
communication is occurring between the client and the external domain because the local domain 
accelerator vends an external domain certificate to the client during the communication to 
present itself as the external domain, but in fact communication is occurring between the client 
and the local domain accelerator via the first set of session keys. 

16. (Cancelled). 

17. (Original) The external domain acceleration system of claim 15 wherein 
communications between the local domain accelerator and the external domain are mutually 
signed. 

18. (Original) The external domain acceleration system of claim 15 wherein the client is a 
browser application that interacts with the local domain accelerator via Secure Sockets Layer 
(SSL) communications. 

19. (Original) The external domain acceleration system of claim 15 wherein the proxy is at 
least one of a transparent proxy and a forward proxy. 

20. (Original) The external domain acceleration system of claim 15 wherein the proxy 
creates a secure communications tunnel between the client and the local domain accelerator and 
the proxy creates a secure communications channel between the local domain accelerator and the 
external domain. 
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21. (Currently Amended) An external domain acceleration system, comprising: 

a local domain accelerato r implemented in a computer-readable medium and to process 
on a proxy ; and 

cache of the proxy , wherein the local domain accelerator securely communicates with a 
client as if the local domain accelerator was an external domain and securely communicates with 
the external domain via encrypted communications for purposes of acquiring data from the 
external domain, and wherein the local domain accelerator houses the data in and vends the data 
from the cache to the client, and wherein the local domain accelerator securely communicates 
with the client via a first set of session keys and separately securely communicates with the 
external domain using a second set of session keys via the encrypted communications and 
wherein the first set of session keys is different from the second set of session keys and the client 
believes that the client is communicating with the external domain because the local domain 
accelerator vends an external domain certificate to the client during the communication to 
present itself as the external domain, but in fact the client is communicating with the local 
domain accelerator using the first set of session keys. 

22. (Original) The external domain acceleration system of claim 21 further comprising a 
proxy that acts as a secure conduit between the client and the local domain accelerator and a 
secure conduit between the local domain accelerator and the external domain. 

23. (Cancelled). 

24. (Previously Presented) The external domain acceleration system of claim 21 wherein the 
local domain accelerator and the external domain exchange certificates with one another during 
communications with one another. 

25. (Currently Amended) The external domain acceleration system of claim 21 wherein the 
client is a browser and uses Secure Sockets Layer (SSL) communications to attempt to directly 
communicate with the external domain, the communications are intercepted and forwarded to the 
[[a]] proxy and the proxy forwards the communications to the local domain accelerator where the 
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local domain accelerator presents itself securely to the client as if it were the external domain. 



26. (Original) The external domain acceleration system of claim 21 wherein the external 
domain includes a plurality of external sites having a plurality of services. 



